MozillaFirefox 45 ESR was updated to 45.7 to fix the following issues
(bsc#1021991):
- MFSA 2017-02/CVE-2017-5378: Pointer and frame data leakage of Javascript
objects (bsc#1021818)
- MFSA 2017-02/CVE-2017-5396: Use-after-free with Media Decoder
(bsc#1021821)
- MFSA 2017-02/CVE-2017-5386: WebExtensions can use data: protocol to
affect other extensions (bsc#1021823)
- MFSA 2017-02/CVE-2017-5380: Potential use-after-free during DOM
manipulations (bsc#1021819)
- MFSA 2017-02/CVE-2017-5390: Insecure communication methods in Developer
Tools JSON viewer (bsc#1021820)
- MFSA 2017-02/CVE-2017-5373: Memory safety bugs fixed in Firefox 51 and
Firefox ESR 45.7 (bsc#1021824)
- MFSA 2017-02/CVE-2017-5375: Excessive JIT code allocation allows bypass
of ASLR and DEP (bsc#1021814)
- MFSA 2017-02/CVE-2017-5376: Use-after-free in XSL (bsc#1021817)
- MFSA 2017-02/CVE-2017-5383: Location bar spoofing with unicode
characters (bsc#1021822)
Please see <a href=“https://www.mozilla.org/en-US/security/advisories/mfsa2017-02/”>https://www.mozilla.org/en-US/security/advisories/mfsa2017-02/</a>
for more information.